19004 Commits

Author SHA1 Message Date
YAMAMOTO Takashi
daa1c85a3b releasenotes: Move Pike ignore-notes to a proper file
Now unreleased.rst is for Queen.

Related-Bug: #1708560
Change-Id: Iaf6642c8955d68a1f6b6572d3ae2a3dabc1244df
2017-08-12 01:43:47 +09:00
Jenkins
e53bb591ec Merge "Update reno for stable/pike" 2017-08-11 15:49:20 +00:00
Jenkins
76e1af8188 Merge "Allow unprivileged users to get their quota usage" 2017-08-11 15:24:15 +00:00
Jenkins
dfd8946edd Merge "Add unit tests for dns_domain for ports" 2017-08-11 13:54:09 +00:00
Jenkins
eb0eb01029 Merge "Add port dns_domain processing logic" 2017-08-11 13:53:52 +00:00
Jenkins
57950b9891 Merge "ovs-fw: Handle only known trusted ports" 2017-08-11 13:52:22 +00:00
60517921fe Update reno for stable/pike
Change-Id: I4ad9adc99c97d4f0b60c0812090fd1005970a14a
2017-08-11 08:59:15 +00:00
Jenkins
d225b86738 Merge "Deprecate web_framework option" 2017-08-11 07:06:29 +00:00
Jenkins
ceb86366d2 Merge "Allow to set/modify network mtu" 2017-08-11 07:06:15 +00:00
Zhengwei Gao
9e185bca08 Allow unprivileged users to get their quota usage
When user try to get quota usage detail for their own project, it will
return null. As process logic of details method is incorrect, it only
allow admin to get other's project quota usage detail.

Change-Id: I2e21dac497a6c5bffba6b55cb4456820900449df
Closes-Bug: #1708133
2017-08-11 06:41:24 +00:00
Jenkins
6280787f84 Merge "Allow extension driver to provide multiple aliases" 2017-08-11 03:13:57 +00:00
Jenkins
b940f041a6 Merge "Reduce rally sub-port count" 2017-08-11 02:26:07 +00:00
Jenkins
a04f8fd049 Merge "DVR: Fix router_update failure when agent restarts" 2017-08-11 01:15:50 +00:00
Kevin Benton
a6a2d4d134 Deprecate web_framework option
We didn't quite get around to pulling out all of the old API
code before the end of the cycle so we should deprecate this
option to make sure people don't use it.

Change-Id: Idf9d497bbccdb89c6e5898611d1cad9a18b1bcbb
Implements: blueprint wsgi-pecan-switch
2017-08-11 01:11:19 +00:00
Ihar Hrachyshka
f21c7e2851 Allow to set/modify network mtu
This patch adds ``net-mtu-writable`` API extension that allows to write
to network ``mtu`` attribute.

The patch also adds support for the extension to ml2, as well as covers
the feature with unit and tempest tests. Agent side implementation of
the feature is moved into a separate patch to ease review.

DocImpact: neutron controller now supports ``net-mtu-writable`` API
           extension.
APIImpact: new ``net-mtu-writable`` API extension was added.

Related-Bug: #1671634
Change-Id: Ib232796562edd8fa69ec06b0cc5cb752c1467add
2017-08-11 00:57:34 +00:00
Kevin Benton
e97ee8a972 Reduce rally sub-port count
This test is executed 4 times and creating 1000 Neutron ports
just to run this scenario 4 times results in this job taking
15 minutes to complete its iterations.

This cuts the count in half to 125 per execution to cut the run
time in half and ensure we don't get to close to the gate timeout.

This was done once before as part of
817a19c4b9ced01af9bbb6f7383283e3f0f0e9bd but unfortunately being
part of another SLA change resulted in it being reverted as part
of the SLA change.

Change-Id: I61466d87b002252efc163cbb5d03eafc5d4da3fb
2017-08-10 11:21:03 -07:00
Jenkins
55a7ab79ff Merge "tests: apply latest release milestone alembic scripts first" 2017-08-10 10:59:59 +00:00
Jenkins
7543948ea8 Merge "functional: disable netlink tests" 2017-08-10 02:29:29 +00:00
Miguel Lavalle
589d206987 Add unit tests for dns_domain for ports
This patchset adds unit tests for dns_domain for ports.

Change-Id: Ib8c05260334703088f48ce932054146d796e56e0
2017-08-09 16:12:53 -05:00
Jakub Libosvar
75ddc9c34e functional: disable netlink tests
Current gate runs with kernel 4.4.0-89. Creating conntrack entries fails
with this version and leaves conntrack in stuck state leading to
functional tests to hang.

This patch proposes to skip those tests that create conntrack entries so
we can enable back the functional job to voting to avoid new regressions
at this suite.

Change-Id: I9f883cea1d101efe6a7214c3a9b679fc32427365
Related-bug: #1709032
2017-08-09 13:44:12 +00:00
Jenkins
90098180fa Merge "[log]: Add validator to logging api" 2017-08-09 06:31:44 +00:00
Jenkins
30ce6749f9 Merge "DVR: Configure centralized floatingips to snat_namespace." 2017-08-09 03:56:47 +00:00
Jenkins
9dd4fd133a Merge "[log]: add driver manager to LoggingPlugin" 2017-08-09 01:52:40 +00:00
Jenkins
90af23080e Merge "Fill device_info with port_security_enabled data" 2017-08-09 01:06:28 +00:00
Miguel Lavalle
4a77533259 Add port dns_domain processing logic
This patchset adds logic to the ML2 DNS integration extension to process
a new dns_domain attribute associated to ports.

This patchset belongs to a series that adds dns_domain attribute
functionality to ports.

DocImpact: Ports have a new dns_domain attribute, that takes precedence
           over networks dns_domain when published to an external DNS
           service.

APIImpact: Users can now specify a dns_domain attribute in port POST and
           PUT operations.

Change-Id: I02d8587d3a1f9f3f6b8cbc79dbe8df4b4b99a893
Partial-Bug: #1650678
2017-08-08 18:42:43 -05:00
Kevin Benton
37d33b2fcd Allow extension driver to provide multiple aliases
This allows extensions to supercede older extensions
if they provide all of the same functionality plus more.
This is used by the DNS domain port extension driver.

Change-Id: I3e91669a83e9e16039f4063bf54b511cec94cecc
Partial-bug: #1650678
2017-08-08 16:29:28 -07:00
Jenkins
9629bd1302 Merge "Degrade log message for missing fanout exchange to debug" 2017-08-08 20:21:30 +00:00
Jakub Libosvar
03c100b959 Fill device_info with port_security_enabled data
Firewall drivers check if port security is enabled. After ovo is sent
over the wire, the port_security_enabled is part of 'security' field.
The patch translates the RPC call from agent to server so the payload
containing port_security_enabled is at the same place.

We may consider implementing change of OVO field to contain boolean
directly.

Change-Id: I647343e84b41da63d7ffcc5a87f3dfa2036adc56
Closes-bug: #1605654
2017-08-08 19:42:09 +00:00
Swaminathan Vasudevan
8b4bb9c0b0 DVR: Configure centralized floatingips to snat_namespace.
This patch is the agent side patch that takes care of configuring
the centralized floatingips for the unbound ports in the snat_namespace.

Change-Id: I595ce4d6520adfd57bacbdf20ed03ffefd0b190a
Closes-Bug: #1583694
2017-08-08 10:44:45 -07:00
Jenkins
5d5ebd0bd9 Merge "Don't check full subnet body in test_filtering_shared_subnets" 2017-08-08 15:54:44 +00:00
Jenkins
d224effd26 Merge "Do not use prelude section for individual release notes" 2017-08-08 11:25:46 +00:00
Ihar Hrachyshka
242b63be23 Don't check full subnet body in test_filtering_shared_subnets
Plugins may add attributes to subnets, in which case simple equality
check will fail. Instead of comparing bodies, compare just IDs. It
should be enough to achieve the goal of the test case.

Change-Id: Iebc22f99285777df7de499c713b2bc1e38e0bd62
Closes-Bug: #1706986
2017-08-08 11:17:19 +00:00
Nguyen Phuong An
6847790414 [log]: Add validator to logging api
This patch added a validator to logging api for checking resource bound
(sg or port is exist or not, ...) and validating whether or not supporting
logging type on each port when we create a log object by specific port_id.

Co-Authored-By: Yushiro FURUKAWA <y.furukawa_2@jp.fujitsu.com>

Change-Id: I10f2441fc2c7bdbda51b05002549b235743a7deb
Partially-implements: blueprint security-group-logging
Related-Bug: #1468366
2017-08-08 13:25:40 +07:00
Nguyen Phuong An
39a9ed4c50 [log]: add driver manager to LoggingPlugin
This patch adds driver manger to LoggingPlugin to manage
logging drivers are enabled belong ML2 dirvers.

Co-Authored-By: Yushiro FURUKAWA <y.furukawa_2@jp.fujitsu.com>

Change-Id: I5a0f896c9ec7f670b662f16825feccbc07db19dd
Partially-implements: blueprint security-group-logging
Related-Bug: #1468366
2017-08-08 13:18:09 +07:00
Ihar Hrachyshka
1da78c924e tests: apply latest release milestone alembic scripts first
Before walking through migration scripts that belong to the release
under development, we should first execute all scripts for the latest
official release because it serves a convergence point. Without it, we
can't guarantee that calling --expand will succeed because some of new
scripts may depend on schema state that is defined by contract scripts.

Change-Id: I501b38900fb2f4409839ecd09be4d937cf20c6a9
Related-Bug: #1671634
2017-08-07 10:09:13 -07:00
Akihiro Motoki
12d6a3ea4c doc: Fix non-existing URLs
Change-Id: I72c1c0fcb7cc541b87b184b32f0797539b919a44
Closes-Bug: #1708394
2017-08-06 23:19:05 +00:00
Jenkins
37bb9a41c4 Merge "Exclude relnote from past releases from Pike relnotes" 2017-08-04 16:53:01 +00:00
Akihiro Motoki
010b133938 Do not use prelude section for individual release notes
prelude section is prepared for general comments about a release [1].
At now neutron release notes use prelude section randomly.
Some rel notes use it and some do not.

This commit drop or move prelude section in Pike release notes.

In addition, some guideline on writing a release note
to the release notes howto page.

Change-Id: I53fefcc3eed30700d095c77d9e000319668097e8
2017-08-04 07:17:52 +00:00
Akihiro Motoki
6f1ecf2466 Exclude relnote from past releases from Pike relnotes
reno includes release notes touched in a target release
even if they are added from past releases.
The recent release note cleanup I made as part of doc8 adoption
and some other cleanup touched release notes from past releases.
As a result, we see several number of release notes from past
release in the Pike release notes unexpectedly.

Also adds a warning note to the release notes howto page

Change-Id: I127f96896488e9992d9309d76055b4883f6a62f3
Closes-Bug: #1708560
2017-08-04 07:16:57 +00:00
Jenkins
9d616f075c Merge "Sinkhole workaround for old topics" 2017-08-04 02:36:58 +00:00
Jenkins
1ad806fdaf Merge "Remove configuration options max_fixed_ips_per_port" 2017-08-04 01:59:43 +00:00
Jenkins
8f79a92e45 Merge "Bump network rev on RBAC change" 2017-08-03 21:53:39 +00:00
Jenkins
85e6294964 Merge "ovo_rpc: Avoid flooding logs with semantic violation warning" 2017-08-03 20:49:51 +00:00
Jakub Libosvar
1d80c960f6 ovs-fw: Handle only known trusted ports
Similarly to filtered ports this patch caches so called trusted ports to
avoid processing in case of unknown port is passed down to firewall
driver. The cached ofport is used for removal as the cache reflects
currently installed flows.

The patch also catches exception caused by inconsistency coming from
ovsdb.

Closes-bug: #1707339

Change-Id: I15cdb28072835fcb8c37ae4b56fc8754375a807c
2017-08-03 18:29:09 +00:00
Gary Kotton
49a0555129 Remove configuration options max_fixed_ips_per_port
This was marked as deprecated in Newton.

Related-bug: #1502356

Change-Id: Iafaa340a9291e1ee84e776ddfffc5f870f7e67e2
2017-08-02 22:09:56 -07:00
Kevin Benton
0b5750ca51 Sinkhole workaround for old topics
This patch introduces a workaround on the Neutron side
for bug 1705351 that results in the Neutron server blocking
trying to send to topics the agents no longer subscribe to.

The workaround is to just subscribe to those topics and do
nothing with the messages that come in until oslo.messaging
can properly recover from loss of listeners.

Change-Id: I946a33dfd0c0da26bb47b524f75f53bf59d3fbd5
Closes-Bug: #1705351
2017-08-02 20:14:10 -07:00
OpenStack Proposal Bot
0adb29f0f0 Updated from global requirements
Change-Id: Ie8727686892488a9bc603b039d34d763b5be7b5c
2017-08-03 00:34:17 +00:00
Jenkins
f17fdf1743 Merge "Fix some pep8 errors under l3 unit tests" 2017-08-03 00:20:57 +00:00
Jenkins
a14aea8e87 Merge "devstack: fix ovs install on fedora like OS" 2017-08-02 20:43:28 +00:00
Ihar Hrachyshka
0b9748e1f9 Degrade log message for missing fanout exchange to debug
In upgrade scenario, this is a regular case (no agents created the
exchange, so fanout is ineffective), so logging it using ERROR level is
misleading and against guidelines.

Change-Id: If098071c9c19490af7eb0863dbab83e488019bd7
Related-Bug: #1705351
2017-08-02 11:37:06 -07:00